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REASONS FOR PRE-APPEAL BRIEF REVIEW 

MAIL STOP AF 
Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313 

Dear Sir. 

The following reasons are submitted for a pre-appeal brief review together with a 
Notice of Appeal filed herewith for the above-identified application. 

SUMMARY OF CLAIMED SUBJECT MATTER 
FIG. 2 shows a secure disk drive 20 according to an embodiment of the present 
invention as comprising a disk 22 for storing data, and an input 24 for receiving an 
encrypted message 26 from a client disk drive, the encrypted message 26 comprising 
dphertext data and a client drive ID identifying the client disk drive. The secure disk 
drive 20 comprises a secure drive key 34 and an internal drive ID 38. A key generator 
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30 within the secure disk drive 20 generates a client drive key 32 based on the client 
drive ID and the secure drive key 34, and an internal drive key 36 based on the internal 
drive ID 38 and the secure drive key 34. The secure disk drive 20 further comprises an 
authenticator 56 for verifying the authenticity of the encrypted message 26 and 
generating an enable signal 50, the authenticator 56 Is responsive to the encrypted 
message 26 and the client drive key 32. The secure disk drive further comprises a data 
processor 40 comprising a message input 42 for receiving the encrypted message 26 
from the client disk drive, and a data ou^ut 58 for outputting the ciphertext data 46 to 
be written to the disk 22. The data processor 40 further comprises an enable input 48 
for receiving the enable signal 50 for enabling the data processor 40, and a key input 51 
for receiving the intemal drive key 36, the internal drive key 36 for use In generating a 
message authentication code. The data processor 40 outputs reply data 54 comprising 
the message authentication code. The secure disk drive 20 outputs a reply 60 to the 
client disk drive, the reply 60 comprising the reply data 54 and the intemal drive ID 38. 



Claims 1-16 stand rejected under 35 USC §1 03(a) as unpatentable over U.S. 
Patent No. 6.226,750 to Trieger in view of U.S. Patent No. 6,473,861 to Stokes and in 
view of U.S. Patent No. 5,931 ,947 to Burns et al.. 

The examiner asserts that Trieger discloses a secure disk drive for receiving an 
encrypted message from a client disk drive, the encrypted message comprising 
ciphertext data and a device ID identifying the client disk drive. The examiner further 
asserts that Trieger discloses a secure disk drive that generates a client drive key 
based on the client drive ID and a secure drive key (state information) for use in 
authenticating the client drive ID. The applicant respectfully disagrees. 
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ARGUMENT 
I. THE ISSUE UNDER 35 U.S.C. §1 03(a) 



A. The rejection should be reversed because the state information disdosed bv 
Trieqer Is not a secure drive key 

The examiner asserts that Trieger discloses a secure disk drive that generates a 
client drive key based on the client drive ID and a secure drive key (state information) 
for use in authenticating the client drive ID. i-lowever, the state informatk>n disclosed by 
Trieger merely refers to information associated with a particular communication session 
between a client and a server. The server saves the state infomnatlon so that the dient 
does not have to resend the state infomr^ation wth each new communrcation request 
(see col, 9, lines 20-27). The state information cannot be considered a secure drive key 
because a client drive key is not generated based on the state infomnation, with an 
authenticator responsive to the generated client drive kev. as recited in the claims. 

In Trieger, a server initially authenticates a client by the client sending 
authentication information, such as a password, to the server (see coL 7, line 65 to col. 
8, line 12). If the authentication information Is approved, the server generates a first key 
that identifies the client (device ID), and transmits the key to the client (col. 8, lines 12- 
15). During a subsequent communication session, the server authenticates the client 
by validating the key (device ID) sent to the server in a communication request (see col. 
8, lines 63-66). As described at coL 9, lines 4-9, Trieger teaches to validate the key by 
"comparing the value of key 92 with key values stored in a key storage database at the 
server 52... .[or] the key may be self-validating in that the server 52 may be able to 
immediately recognize the key's Information or format." Nowhere does Trieger (or the 
other relied upon prior art, alone or in combination) disclose or suggest that, when an 
encrypted message including a client drive ID Is received, an authenticator verifies the 
authenticity of the encrypts message responsive to a client drive key generated based 
on the client drive ID and a secure drive key . 

The examiner also asserts that Bums discloses a reply that may contain an 
internal drive ID so that devices can authenticate each other. This interpretation of 
Bums is incorrect. Burns discloses a secure disk drive for authenticating messages 
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received from a client user or subscriber and does not disclose devices authenticatim 
each other (See Abstract, wherein *'all encryption is done by the clients, rather than by 
the devices.") As discussed by the applicant in the specification at page 4, lines 4-6, in 
Bums, "the keys used by the clients for encrypting data and generating the message 
authentication codes are generated extemal to the devices by a system administrator 
which is susceptible to attack." 

In the final office action, the examiner asserts that Bums discloses (col. 3, line 65 
through col. 4, line 7) "^the network storage devices can be comprised of existing direct 
access disk devices and files can be copied directly from on storage device to another 
in a secure manner, the networks clients only involvement would be to initiate the 
action." However, this does not mean that the storage devices authenticate one 
another, it merely means that files can be safely copied from one storage device to 
another because the files have alreadv been encrvoted bv the clients > In any event, the 
examiner concedes it is the network clients that "initiate the action'', which means the 
request to transfer files comes from a network client and not another storage device. In 
Bums, it is the requests generated bv the network clients that are authenticated by the 
storage device and not requests generated bv other storage devices . 
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CONCLUSION 



Reversal of the rejections is respectfully requested. 

To the extent necessary, a petition for an extension of time under 37 C.F.R, 
1.136 is hereby made. Please charge any shortage in fees due in connection with the 
filing of this paper, including extension of lime fees, to Deposit Account No. 23-1209, 
and please credit any excess fees to such deposit account 



WESTERN DIGITAL TECHNOLOGIES, INC. 
2051 1 Lake Forest Drive 
Lake Forest, CA 92630 
Tel.: (949)672-7000 
Fax: (949) 672-6604 



Respectfully submitted, 



Date: May 26, 2006 
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